Tracing messages through a CAS server
I am configuring inbound internet message for my exchange 2013 system. and was planning on routing traffic from my DMZ edge servers to my internal CAS servers. I just realized that I will not be able to search messagetracking logs on the CAS servers should
we have delivery issues and need to trouble shoot transport.
- is there a way to trace messages through a CAS server? ( no mailbox role )
Would a preferrable configuration be to
- add the Mailbox Role to the CAS servers to enable messagetracking ( no user mailboxes )
- or to stand up a couple dedicated mailbox servers ( again, no user mailboxes ) to act as HUB servers for routing traffic
We are a large organization, think 20,000+ mailboxes, and there fore a LOT of traffic.
Tom
You can't see the normal message tracking logs on a CAS since it just proxies all the traffic but you can still enable protocol logging on the receive connector on the CAS to see more details when you need to. The logs will be in the following location
(default)
%ExchangeInstallPath%TransportRoles\Logs\FrontEnd\ProtocolLog\SmtpReceive
There is no need to add the MBX role to the CAS servers if you don't want to.
http://technet.microsoft.com/en-us/library/bb124531(v=exchg.150).aspx
DJ Grijalva | MCITP: EMA 2007/2010 SPA 2010 | www.persistentcerebro.com
Similar Messages
-
I can't send a message through my SMTP-server when i configured it IMAP
Hi,
When I configure my email account as POP3 I don't get the send and drafts maps. So I configured it as IMAP but now when i try to send an email I get the notice that the message can't be send through my SMTP server configuration.
Hope somebody can help me out,
Thanks,
StevenReconfigure your SMTP manually
*https://support.mozilla.org/en-US/kb/manual-account-configuration
Make sure about URL and Port No, when configuring the SMTP
Which email server are you using?
*Google/Yahoo/Outlook? -
Exchange 2013 CAS server returned '500 Message rejected'
Hi, all.
Exchange 2013 with CAS server and 2 mailbox servers. Health checks are all 100% healthy.
One of our users cannot receive email from an external user. Our CAS server keeps rejecting the message. I can trace the message and see that it did indeed hit our servers, and was rejected. But I cannot find out WHY it was rejected.
Here is the Delivery Report from the EAC:
Delivery Report for NAME ([email protected])
Failed
3/30/2015 1:41 PM <CAS servername>
The message couldn't be delivered.
[{LRT=};{LED=500 Message rejected};{FQDN=};{IP=}]
The external user gets this NDR:
<our local CAS servername> gave this error:
Message rejected
In the Diagnostic information for administrator section:
<our local CAS servername> returned '500 message rejected'
followed by the Original message headers. I think I'm looking for some more verbose logging to see what rule or configuration rejected the message. Any help would be greatly appreciated!
Thanks!
DanMy main question: how can I see what triggered my CAS server to reject this message with error 500?
Our user can receive email from other external senders ok. It seems to be just this one sender having trouble.
Our transport rules are not complex, and I see no rules that would block this sender or domain.
We use Exchange Online Protection. The message gets through EOP and hits our CAS server. The CAS server rejects the message - it never gets to the Client.
The CAS server gives the error 500 - but that's all I can find. I need a command or somewhere to look to see what triggered the 500 error.
I've posted the NDR received by the sender and scrubbed our identifying information.
Rcn.com looks like the sender's online forwarding host - the spf record for senderdomain.net points back to rcn.com. I've run an spf record check and it passes, so I do not believe that is the issue.
Here is the NDR:
From: [email protected]
To: [email protected]
Sent: Monday, March 30, 2015 1:41 PM
Subject: Undeliverable: Hello from FirstName
CAS1.our_internal_domain.local rejected your message to the following email addresses:
FirstName LastName ([email protected])
A problem occurred while delivering your message to this email address. Try sending your message again. If the problem continues, please contact your email admin.
CAS1.our_internal_domain.local gave this error:
Message rejected
Diagnostic information for administrators:
Generating server: BY1PR0501MB1112.namprd05.prod.outlook.com
[email protected]
CAS1.our_internal_domain.local
Remote Server returned '500 Message rejected'
Original message headers:
Received: from BLUPR05CA0049.namprd05.prod.outlook.com (10.141.20.19) by
BY1PR0501MB1112.namprd05.prod.outlook.com (25.160.103.146) with Microsoft
SMTP Server (TLS) id 15.1.118.21; Mon, 30 Mar 2015 17:40:54 +0000
Received: from BL2FFO11FD027.protection.gbl (2a01:111:f400:7c09::115) by
BLUPR05CA0049.outlook.office365.com (2a01:111:e400:855::19) with Microsoft
SMTP Server (TLS) id 15.1.125.19 via Frontend Transport; Mon, 30 Mar 2015
17:40:54 +0000
Received: from smtp.rcn.com (69.168.97.78) by
BL2FFO11FD027.mail.protection.outlook.com (10.173.161.106) with Microsoft
SMTP Server (TLS) id 15.1.130.10 via Frontend Transport; Mon, 30 Mar 2015
17:40:54 +0000
Return-Path: [email protected]
X_CMAE_Category: , ,
X-CNFS-Analysis: v=2.0 cv=PMSNCIWC c=1 sm=1 a=gRQJo8bc1j9+0GSSRogFxg==:17 a=NTyKUL13AAAA:8 a=ML7w5Z3_AAAA:8 a=3H5rcUylbt2uBKgiyYQA:9 a=wPNLvfGTeEIA:10 a=XQfDMMe_SRUA:10 a=SEXQnC1BqQAA:10 a=7ZjHjvgxCjAA:10 a=Wcs1mLwGzyUA:10 a=sBa8ZLUje9YA:10 a=k-GqB2yPh3IA:10
a=N4kHG9ehtKzd7-3o534A:9 a=_W_S_7VecoQA:10 a=gRQJo8bc1j9+0GSSRogFxg==:117
X-CM-Score: 0
X-Scanned-by: Cloudmark Authority Engine
X-Authed-Username: ZHAtZm1hQHJjbi5jb20=
Authentication-Results: smtp02.rcn.cmh.synacor.com
[email protected]; sender-id=neutralourdomain.com; dkim=none
(message not signed) header.d=none;ourdomain.com; dmarc=pass action=none
header.from=senderdomain.net;
Authentication-Results: smtp02.rcn.cmh.synacor.com [email protected]; spf=neutral; sender-id=neutral
Authentication-Results: smtp02.rcn.cmh.synacor.com smtp.user=sender; auth=pass (LOGIN)
Received-SPF: neutral (smtp02.rcn.cmh.synacor.com: 69.72.92.252 is neither permitted nor denied by domain of senderdomain.net)
Received: from [69.72.92.252] ([69.72.92.252:2689] helo=FirstNameLastName)
by smtp.rcn.com (envelope-from <[email protected]>)
(ecelerity 3.6.2.43620 r(Platform:3.6.2.0)) with ESMTPA
id 58/6E-17115-4AA89155; Mon, 30 Mar 2015 13:40:53 -0400
Message-ID: <011A7DBF0D954F62987032D45778AF29@FirstNameLastName>
From: FirstName LastName <[email protected]>
To: FirstName LastName <[email protected]>
Subject: Hello from FirstName
Date: Mon, 30 Mar 2015 13:40:49 -0400
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_NextPart_000_0007_01D06AEF.223E4A60"
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.5931
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.6157
X-EOPAttributedMessage: 0
Received-SPF: Pass (protection.outlook.com: domain of senderdomain.net designates
69.168.97.78 as permitted sender) receiver=protection.outlook.com;
client-ip=69.168.97.78; helo=smtp.rcn.com;
Authentication-Results: spf=pass (sender IP is 69.168.97.78)
[email protected];
X-Forefront-Antispam-Report:
CIP:69.168.97.78;CTRY:US;IPV:NLI;EFV:NLI;SFV:SKN;SFS:;DIR:INB;SFP:;SCL:-1;SRVR:BY1PR0501MB1112;H:smtp.rcn.com;FPR:;SPF:None;LANG:en;
X-Microsoft-Antispam: UriScan:;BCL:0;PCL:0;RULEID:;SRVR:BY1PR0501MB1112;
X-Exchange-Antispam-Report-Test: UriScan:;
X-Exchange-Antispam-Report-CFA-Test:
BCL:0;PCL:0;RULEID:(601004);SRVR:BY1PR0501MB1112;BCL:0;PCL:0;RULEID:;SRVR:BY1PR0501MB1112;
X-OriginatorOrg: ourdomain.onmicrosoft.com
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 30 Mar 2015 17:40:54.1243
(UTC)
X-MS-Exchange-CrossTenant-Id: c92ecf05-92f8-42f4-a246-24bee4988793
X-MS-Exchange-CrossTenant-FromEntityHeader: Internet
X-MS-Exchange-Transport-CrossTenantHeadersStamped: BY1PR0501MB1112
Dan -
I cannot email photos from within iPhoto (v. 9.5.1). When I hit send I get a message: "Your email did not go through because the server did not reply." This happens for both my iCloud account and my Shaw account. What to do???
Are you able to email from Mail with those two accounts? If so:
1 - go to iPhoto's Accounts preference pane and delete both accounts. Now add them back and try again.
2 - a better solution IMO is to set Mail as the email client for iPhoto is iPhoto's General preference pane. This gives you better access to your contacts, a sent copy of all emails and, if you want a layout similar to iPhoto's, photo layouts located in Mail's stationary. -
I'm trying to connect to my work's VPN. I am connected to the VPN, but I cannot access the server. I keep getting a message that says the server may not exist or is unavailable. I know that’s not the case because my coworkers are connected. Can someone please help me?
I have the same problem. It is only with tv shows and only with programs I have downloaded after the software update.
Apple support sent me the above link too....but it doesn't solve the problem...my computer is authorized and the content is in my library and will play on my Mac air, but it will not sync the tv shows, it keeps saying my computer isn't authorized for it.
No answers here, but you are definitely not alone with this issue. -
I get this error message when I try to email photos using iPhoto: Your email did not go through because the server did not reply. How can I get this to work when my internet is connected?
Are you able to email from Mail with those two accounts? If so:
1 - go to iPhoto's Accounts preference pane and delete both accounts. Now add them back and try again.
2 - a better solution IMO is to set Mail as the email client for iPhoto is iPhoto's General preference pane. This gives you better access to your contacts, a sent copy of all emails and, if you want a layout similar to iPhoto's, photo layouts located in Mail's stationary. -
I am trying to send photos using iphotos. I just get a message saying your email did not go through because the serve did not reply, check your internet connection. Everything else is working, I can send normal emails and attach photos but not iphotos. What have I missed? Margee
I am trying to send photos using iphotos. I just get a message saying your email did not go through because the serve did not reply, check your internet connection. Everything else is working, I can send normal emails and attach photos but not iphotos. What have I missed? Margee
-
I can never share via email, using iPhoto. The error: Your email did not go through because the server did not reply. always pops up. I have no problems with my server or internet connection.
Any ideas?
thanks.Go into iPhoto's Accounts preference pane and delete the email account there. Then add it back. If that fails you can select Mail as your email client in iPhoto as that's more reliable and flexible. It also offers stationary for photos that are not unlike those in iPhoto's client:
and using Mail as the client will allow you to have a Sent copy automatically.
OT -
Iphoto Your email did not go through because the server did not reply.
I have recently upgraded to Yosemite. Since then I have been unable to send photos by mail from iPhoto and on attempting get the following error message 'Your email did not go through because the server did not reply'.
Have you enabled two-step verification? Then you need to create an app-specific password, see the post below:
Re: I am using iPhoto version 9.6 and I can no longer get an email sent with a photo attached. I get an error message saying the email did not go through because the server did not reply. I can send the photo with Mail. Help!in response to Gary Kissler
This solution is for those of you using 2-step verification for your Apple ID and are using iCloud as the mail server that you are trying to mail photos with.
I too had this issue. The problem in my case occurred because I had setup 2-step authentication for my Apple ID. If you have done this then you will get the error message "the mail server did not recognize your email/password...". To solve the problem go to:
https://appleid.apple.com
Click "Manage Your Apple ID"
Verify your identity with the device you selected (if this step does not show up then you have not likely set up 2-step authentication and this is not your solution)
Click Password and Security in the left column
Click Generate an app-specific password
Enter iPhoto as the name of the app
Copy the password and paste this into the password box in iPhoto where you would normally enter your apple ID (in the mail account section in iPhoto preferences).
And...voila' (I hope) -
Exchange 2013 - Proxy through client access server not working
Hello All -
I recently migrated our company to Exchange 2013 and noticed that our email was leaving through the mailbox server. I put a check mark in the Send Connector where it says "Proxy through Client Access Server" and my mail is still coming from the
mailbox server. How can I go about fixing this problem?
Environment:
1 CAS Server
1 Mailbox Server
Both server are behind the firewall with only port 25 opened to the CAS. The CAS has a Send Connector to a smart host for all messages.
Thank you!
RyanHi,
Please check if the outbound messages without smart host are coming from CAS .
I doubt it send to the smart host directly if you configure smart host, and not use proxy thogh CAS.
If you have any feedback on our support, please click
here
Wendy Liu
TechNet Community Support -
I went through all the steps to try to resolve getting the message in a box every time i try to send an e-mail. What next ?
Message is " A copy has been placed in your
Outbox. Sending the message content to the server failed."
Any assistance would be greatly appreciated. My internet works fine as I can send e-mails from my Yahoo account on my MAC no problem.
Address is fine etc.How long has it been going on? I've had my yahoo mess up and if i wait a bit it resolves itself. Yahoo is doing something with their servers and it messes with your mail if your mail happens to be on one of those servers.
-
Can i use same certificate on 2 different CAS Server across sites
Hi All
I have a question I have been playing with for a few days,
I have the following setup,
2 sites connected via a VPN and a DAG configured between sites.
Site 1-Head Office
2 exchange 2010 servers,
1 running CAS and Mailbox (this server is entry point to all clients for owa etc.)
1 running Hub, CAS, Mailbox. (this is the main server and a DAG Member)
We have a UNC certificate associated with all records pointing to remote access and its installed on both servers.
** Everything in this site works fine.
** The AD DNS server does not have a zone for the public domain with all the external records only the .local domain. Planning to change this soon.
Site 2.
1 exchange 2010 servers,
1 running Hub, CAS, Mailbox. (this is the main server for this site, a DAG Member and no entry point at this time but we intend to use it for redundancy)
** Currently all BD are on server in site 1.
** The AD DNS server does not have a zone for the public domain with all the external records only the .local domain. Planning to change this soon.
My questions are as follows:
1 on site 2’s the cas server can I use the same certificate I’m using onsite 1. in other words all clients currently use mail.domain.com which has an IP pointing to site 1, can I use that same certificate in site 2 and associate
it with the CAS server there? (in the event of a failover I just change the records IP)
2 All smtp traffic come through site 1, when I test moving active databases to site 2, all email stay in the ques of exchange server in site one, they don’t get delivered. (I have not set AD replication through smtp so don’t know
if this is a factor)
3 When I do set the active databases to site 2, webmail and remote services stop working, I get the infamous error when logging onto webmail, service unavailable because it’s been moved. I have read a lot about this being an internal
external url issue.
All these issues im starting to think they all interlinked, and would like some help.
CheersAnswers to your questions:
Yes. Understand that until you swap your external DNS so it points to Site 2, the mail.domain.com won't be accessed, but it will be there for when you want it to be.
AD replication is not the issue, so don't try to set it to use SMTP. If you have hub servers in both sites, your inbound Internet email should be delivered from the Site 1 hubs to the Site 2 hubs. We may need more information before we can give
you a good answer for this question. However, you may check the following TechNet article (and its links) for assistance.
http://technet.microsoft.com/en-us/library/aa998825(v=exchg.141).aspx
Web access requires that the CAS you connect to be either externally accessible and in the same site as your mailbox server, or that the CAS in the inaccessible Windows site needs to be configured as internal only and the accessible CAS needs to be configured
to proxy connections. For this, make sure you have followed the directions in the following TechNet article.
http://technet.microsoft.com/en-us/library/bb310763(v=exchg.141).aspx
HTH ... -
Unable to access Workspace through Apache web server
Hi,
I have configured Hyperion 9.3.1. products in windows.
I am getting the following error message when trying to access Workspace through Apache web server(port 19000). But, able to access through Weblogic Application server(port 45000).
please assist me in resolving this issue.
Internal Server Error
The server encountered an internal error or misconfiguration and was unable to complete your request.
Please contact the server administrator, [email protected] and inform them of the time the error occurred, and anything you might have done that may have caused the error.
More information about this error may be available in the server error log.
Apache/2.0.63 (Win32) mod_jk/1.2.8 Server at nasbydapp04 Port 19000
Thanks,
SivaI re-configured the BIPlus components and even now, i am unable to access workspace through Apache web server.
But now, i am getting a different error
Error:
HTTP 404 - File not found
Internet Explorer
Can anyone help me in resolving this issue.
I have updated httpd.conf and HYSL-Weblogic.conf file in Apache server. -
HELP! Why am I getting this error message? It's driving me crazy! When I try to send an email, the message stalls in the outbox and the following message pops up - "A copy has been placed in your Outbox. Sending the message content to the server failed." I have deleted and reinstalled the account, restarted the phone, etc - what the heck? The emails work just fine at Yahoo online, so the account it fine...I don't want to hard reset the phone, as I had to do that recently and it's a pain - any suggestions?
OR they are the right settings but you are trying to send through a different internet provider or 3G provider, that does not allow that SMTP server to send email.
if I send email from 3g or someone elses wifi on a different ISP, it will not work, because it does not allow that server to be contacted. this is normal.
What you want to do is setup a gmail account and use their SMTP server settings for the defauly outgoing server. that way you dont have to worry about this. -
I have been using my iphone for almost a year and after my email address was hacked yesterday by a diet berry fake email, i can send out an email from my phone. I have removed, rebooted, removed, etc.....and changed my password, still can't send out an email.
Error Message: A copy has been placed in your outbox. Sending the message content to the server failed.
ThanksOR they are the right settings but you are trying to send through a different internet provider or 3G provider, that does not allow that SMTP server to send email.
if I send email from 3g or someone elses wifi on a different ISP, it will not work, because it does not allow that server to be contacted. this is normal.
What you want to do is setup a gmail account and use their SMTP server settings for the defauly outgoing server. that way you dont have to worry about this.
Maybe you are looking for
-
My 3rd iphone is a 3GS. I did not buy this one from the apple store, how do I register this serial number with my apple account? it is already sync'd and it and will preform every function except email to my home computer. It says apple ID disabled,
-
when I open multiple tabs which do not fit the tab strip I have to move through tabs using scroll buttons. is there any way way I can stack the tabs on each other or suggest me a add-on which can help me achieve this
-
Oracle Database Express Edition 11g Database; Tables bigger than 11 GB
Dear all, is it possible to make a part of big Tables (14 GB) visible in Oracle Database Express Edition 11g Database? If yes, it would be nice to get the correct development. Thanks in advance. Regards Peter
-
hi all We have a group of pumps & codes of all these pumps are created on that basis. Similarly the spares of these pumps are having codes under respective category. But, spare parts of a group of pumps are same (physically). Also supplier part no. f
-
JSF with in another dynamic JSF - Urgent Help Needed
Hi, When i have JSF with in another dynamic JSF it worked fine in weblogic 9.2. But in weblogic 10.3.2 it is thwoing illegal state exception. Ho w can i add another JSP? <h:form id="frmAssignImpersonate"> <h:inputHidden id="hiddenSoxEditPrivileg